Avaya security teams operate in two workstreams: the protection of people and assets and the protection of Avaya and customer data. Robust business continuity and crisis management plans maintain our employee safety and operations. The Information Security team ensures the protection and availability of Avaya’s information assets, which includes information entrusted to us by our customers. We understand that threats to our network and information come from many different vectors and are extremely fluid. We approach security by: 

• Security Operations and Best Practices 
• Platform and Network Security 
• Availability and Continuity 
• Incident Response 
• Continuous Assessment and Improvement 

Privacy By Design: Our cloud solutions go through stringent internal engineering processes to ensure they incorporate technical features to enable our clients to comply with the requirements of GDPR and other privacy laws around the world. 

Binding Corporate Rules: Avaya’s processor Binding Corporate Rules ensure that all our entities handling customer data do so following rigorous data handling processes of the highest standards approved by the EU regulatory authorities. 

Our contractual commitments to your personal data: Avaya will handle your data in accordance with the commitments we make in our Data Processing Agreement. Our Data Processing Agreement has been designed not just with GDPR in mind, but with a vast array of other privacy laws. 

EU and UK data transfers: Our exports of EU and UK personal data rely on our Binding Corporate Rules and our processes to carry out transfer impact assessments whenever such data is shared outside of the Avaya group. For more information, review our FAQs. 

Privacy Factsheets:  Delve into how we handle your personal data and how you can take control of your data in various our solutions. See our Privacy Fact Sheets for more information.